Количество 14
Количество 14
BDU:2018-00102
Уязвимость модуля mod_auth_ digest httpd-демона веб-сервера Apache HTTP Server, позволяющая нарушителю получить доступ к конфиденциальной информации или вызвать отказ в обслуживании
CVE-2017-9788
In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service.
CVE-2017-9788
In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service.
CVE-2017-9788
In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service.
CVE-2017-9788
In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value place ...
openSUSE-SU-2017:2016-1
Security update for apache2
SUSE-SU-2017:1997-1
Security update for apache2
SUSE-SU-2017:1961-1
Security update for apache2
GHSA-w97h-p5ff-7q69
In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service.
SUSE-SU-2017:2449-1
Recommended update for apache2
ELSA-2017-2478
ELSA-2017-2478: httpd security update (IMPORTANT)
SUSE-SU-2017:2756-1
Security update for apache2
ELSA-2017-2479
ELSA-2017-2479: httpd security update (IMPORTANT)
ELSA-2017-2483
ELSA-2017-2483: httpd24-httpd security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2018-00102 Уязвимость модуля mod_auth_ digest httpd-демона веб-сервера Apache HTTP Server, позволяющая нарушителю получить доступ к конфиденциальной информации или вызвать отказ в обслуживании | CVSS3: 6.5 | 53% Средний | больше 8 лет назад |
 | CVE-2017-9788 In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service. | CVSS3: 9.1 | 53% Средний | больше 8 лет назад |
 | CVE-2017-9788 In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service. | CVSS3: 4.8 | 53% Средний | больше 8 лет назад |
 | CVE-2017-9788 In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service. | CVSS3: 9.1 | 53% Средний | больше 8 лет назад |
| CVE-2017-9788 In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value place ... | CVSS3: 9.1 | 53% Средний | больше 8 лет назад |
 | openSUSE-SU-2017:2016-1 Security update for apache2 | 53% Средний | больше 8 лет назад | |
| SUSE-SU-2017:1997-1 Security update for apache2 | 53% Средний | больше 8 лет назад | |
| SUSE-SU-2017:1961-1 Security update for apache2 | 53% Средний | больше 8 лет назад | |
| GHSA-w97h-p5ff-7q69 In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service. | CVSS3: 9.1 | 53% Средний | больше 3 лет назад |
| SUSE-SU-2017:2449-1 Recommended update for apache2 | около 8 лет назад | ||
| ELSA-2017-2478 ELSA-2017-2478: httpd security update (IMPORTANT) | около 8 лет назад | ||
| SUSE-SU-2017:2756-1 Security update for apache2 | около 8 лет назад | ||
| ELSA-2017-2479 ELSA-2017-2479: httpd security update (IMPORTANT) | около 8 лет назад | ||
| ELSA-2017-2483 ELSA-2017-2483: httpd24-httpd security update (IMPORTANT) | около 8 лет назад |
Уязвимостей на страницу